Thank you for reaching out.
I understand you wish to configure an encrypted tunned with private peering in your Azure Express route.
You can follow this tutorial to Configure a Site-to-Site VPN connection over ExpressRoute private peering
This way the
- Traffic over private peering is encrypted.
- Point-to-site users connecting to a virtual network gateway can use ExpressRoute (via the Site-to-Site tunnel) to access on-premises resources.
- It's possible to deploy Site-to-Site VPN connections over ExpressRoute private peering at the same time as Site-to-Site VPN connections via the Internet on the same VPN gateway.
This feature is available for the following SKUs:
VpnGw1AZ, VpnGw2AZ, VpnGw3AZ, VpnGw4AZ, VpnGw5AZ with standard public IP with one or more zones
Hope this helps! Please let me know if you have any additional questions. Thank you!
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.